API Reference
Organization Account API Reference
This section provides comprehensive documentation for all Organization account APIs.
Each API module includes detailed endpoint documentation with request/response schemas, status codes, code samples, and implementation status indicators. Browse the categories below to explore the complete API capabilities.
Organization-Specific APIs
These APIs are exclusive to Organization accounts.
9 categories, 58 endpoints
Organizations
Organization management, workspaces, roles, and member invitations
Invitations
Organization invitation management
SSO
Single Sign-On provider configuration, SCIM, and ABAC policies
SSO Enforcement
SSO migration planning and enforcement
Roles & Permissions
Role-based access control and permission management
User Management
User lifecycle, bulk operations, and user administration
Workspaces
Workspace management, settings, and provisioning
SCIM
SCIM 2.0 protocol endpoints for user provisioning from identity providers
Organization Tokens
Organization-scoped personal access token management
Shared APIs
These APIs are available to both Individual and Organization accounts. For Organization accounts, these APIs work within the organization context and can be managed by organization administrators.
How Shared APIs Work for Organization Accounts:
- Organization Context: All Shared APIs operate within your organization's security and policy framework
- Admin Controls: Organization admins can configure settings, enforce policies, and monitor usage
- Member Management: Individual users manage their own settings, but admins have visibility and control
- Enterprise Features: Organization settings can override defaults (e.g., MFA requirements, session timeouts)
8 categories, 63 endpoints
Authentication
User registration, login, OAuth, password management, and profile operations
Sessions
Session lifecycle and monitoring within organization context
Multi-Factor Authentication
TOTP, Email OTP, backup codes, and MFA device management
WebAuthn
Passwordless authentication with hardware keys and biometrics
Trusted Devices
Device fingerprinting, activation, and management
Personal Access Tokens
Personal access token management for programmatic API access
OAuth Applications
OAuth 2.0 application management for organizations
OAuth2
OAuth 2.0 authorization flows for third-party applications
Platform APIs (Sprint 3)
These APIs enable data operations and are available to both Individual and Organization accounts:
4 categories, 44 endpoints
Data Sources
Connect, manage, and query data across 30+ data sources
Storage
Upload, manage, and access files securely
Policies
Data governance policies including row-level security and data masking
Prompt Studio
Query data using natural language and manage prompts
Microservices
These are specialized services that are typically called internally by the main API but can be accessed directly for advanced use cases:
3 services, 47 endpoints